Cyberattack (Page 40)

How to check if you have Log4j installed on your servers? Fix the vulnerability in seconds by setting the log4j2.formatMsgNoLookups variable to true

On: December 13, 2021

After several days of uncertainty and confirmed attacks, the Apache Software Foundation has finally released an update to address CVE-2021-44228, the zero-day vulnerability that caused problems for thousands of onlineRead More →

Hackers encrypt the vaccination certificates of the Brazilian population with ransomware

On: December 13, 2021

In: Incidents

A hacking group calling itself Lapsus$ Group claims to have encrypted with ransomware and stolen some 50 TB of information from Brazil’s Ministry of Health, including millions of COVID-19 vaccinationRead More →

Canada shuts down 4,000 government websites fearing cyberattacks exploiting a critical vulnerability in Log4j

On: December 13, 2021

In: Data Security

As a preventive measure, Quebec, Canada, decided to shut down some 4,000 government websites due to the risk of exploitation of a critical vulnerability affecting a popular registration system. ÉricRead More →

World largest logistic company suffers massive cyber attack

On: December 10, 2021

In: Incidents

Security teams at German logistics firm Hellmann Worldwide Logistics have confirmed that their IT infrastructure was hit by an unprecedented cyberattack. Cybersecurity experts are currently working on the system recoveryRead More →

Zero-day vulnerability in Log4j affects millions of Apache, Minecraft and other applications users; exploit code published

On: December 10, 2021

In: Vulnerabilities

Experts report the release of an exploit for a remote code execution (RCE) vulnerability in Log4j, an open source logging utility used in all kinds of web applications, including thoseRead More →

British telco Virgin Media fined £50k penalty for sending spam emails to more than 400,000 clients who opted-out of marketing emails

On: December 9, 2021

In: Incidents

Virgin Media could be fined up to £50,000 after British authorities detected the company spammed nearly 500,000 customers, some of whom filed complaints with the Information Commissioner’s Office (ICO) aboutRead More →

17 malicious packages in the Node.js package manager (npm) code repository were looking to harvest Discord tokens

On: December 9, 2021

In: Malware

Cybersecurity specialists report the detection of a set of malicious packages in Node.js package manager repository (npm) designed to collect Discord tokens and eventually take control of the affected accounts.Read More →

In 2021 maximum security vulnerabilities were reported as compared to past according to NIST

On: December 9, 2021

In: Vulnerabilities

A report from the National Institute of Standards and Technology (NIST) details the number of vulnerabilities found in 2021, which amounts to 18,378 flaws, thus breaking the record set theRead More →

Information disclosure vulnerability in FortiSandbox, FortiWeb and FortiADC: Patch immediately

On: December 8, 2021

In: Vulnerabilities

Information security specialists reported the finding of a critical information disclosure vulnerability in multiple Fortinet products, including FortiSandbox, FortiWeb and FortiADC. Tracked as CVE-2021-32591, the flaw exists due to missingRead More →

Important privilege escalation flaw in SonicWall Global VPN client: Patch immediately

On: December 8, 2021

In: Vulnerabilities

Cybersecurity specialists reported the finding of a severe vulnerability affecting SonicWall Global VPN client. According to the report, successful exploitation of this flaw would allow deploying dangerous hacking scenarios. TrackedRead More →

Cyberattack (Page 40)

How to check if you have Log4j installed on your servers? Fix the vulnerability in seconds by setting the log4j2.formatMsgNoLookups variable to true

Hackers encrypt the vaccination certificates of the Brazilian population with ransomware

Canada shuts down 4,000 government websites fearing cyberattacks exploiting a critical vulnerability in Log4j

World largest logistic company suffers massive cyber attack

Zero-day vulnerability in Log4j affects millions of Apache, Minecraft and other applications users; exploit code published

British telco Virgin Media fined £50k penalty for sending spam emails to more than 400,000 clients who opted-out of marketing emails

In 2021 maximum security vulnerabilities were reported as compared to past according to NIST

Information disclosure vulnerability in FortiSandbox, FortiWeb and FortiADC: Patch immediately

Important privilege escalation flaw in SonicWall Global VPN client: Patch immediately

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

Hacking Debian, Ubuntu, Redhat& Fedora servers using a single vulnerability in 2024

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]